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i— I (54) Title: USER BANDWIDTH MONITOR AND CONTROL MANAGEMENT SYSTEM AND METHOD 

<s 

(57) Abstract: A communication method for equitably distributing access to a shared broadband signal having a defined bandwidth 
2 t0 ensure that each user accessing the system receives at least a predetermined minimum bandwidth connection. The method uses 

a server system that includes at least one server and a plurality of client systems connected to at least one server. A respective user 

utilizes each client system. The method includes controlling user access to the shared broadband signal, monitoring an amount of 
^ the signal bandwidth used by each user, and controlling an amount of the signal bandwidth available to each user based on a total 

usage of the bandwidth. 
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USER BANDWIDTH MONITOR AND CONTROL 
MANAGEMENT SYSTEM AND METHOD 

FIELD OF INVENTION 

[0001] The invention relates generally to shared broadband 
signals, and more particularly to equitably distributing access, among a plurality 
of users, to a shared broadband signal having a defined bandwidth. 

BACKGROUND OF THE INVENTION 
5 [0002] The performance levels of a shared network system that 

utilizes a broadband wireless signal to communicate with a remote location, 
such as the Internet or a remote server system, can be seriously encumbered by 
users that monopolize access to the signal. The broadband signal has a 
specific bandwidth that must carry the input/output (I/O) data transmissions of all 
10 the users connected to the shared network, between the shared network 
location and the remote location. Thus, access to, or use of, the bandwidth 
must be properly managed such that each user connected to the network has 
adequate bandwidth access without any one user dominating use of the 
bandwidth. 

15 [0003] Heavy users of a broadband signal on a typical shared 

network system have the largest impact on overall system performance. For 
example, users accessing such things as streaming audio or streaming video 
can lockup a large amount of signal bandwidth on an unrestricted pipeline, 
thereby reducing the amount of bandwidth available for access by other users 
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connected to the network. The consumption of a large amount of bandwidth by 
one or more users can congest access to the signal, reduce transfer rates and 
inhibit overall performance of the network system. For example, communication 
features such as chat rooms, e-mail, virtual private networks (VPN), file transfer 
5 protocols (FTP), and other features offered by Internet Providers (IPs), consume 
a large amount of a broadband signal bandwidth. 

[0004] Furthermore, heavy users can connect, or log on, to the 
network and remain logged on for an extended duration. Thus, a heavy user 
can, in effect, monopolize the bandwidth until they disconnect, or log off. This 
10 type of heavy use can cause the system to perform below an expected 
performance level, from both a user and provider point of view, and be a serious 
interference and inconvenience to other users. 

[0005] One possible solution to bandwidth management is the 
use of an overall structured user access control, or 'throttle 1 , as well as strict 
15 control of the utilization of specific high bandwidth consuming communication 
features. 

[0006] Therefore, it would be desirable to manage the 
performance levels of a shared network system that utilizes a broadband 
wireless signal, such that each user connected to the network has adequate 
20 bandwidth access without any one user dominating use of the bandwidth. 
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BRIEF SUMMARY OF THE INVENTION 

[0007] In one preferred form, the present invention forms a multi- 
communication method for equitably distributing access to a shared broadband 
signal having a defined bandwidth. The method uses a server system that 
includes at least one server and a plurality of client systems connected to the 
5 server. A respective user utilizes each client system. The method includes 
controlling user access to the shared broadband signal, monitoring an amount of 
signal bandwidth used by each user, and controlling an amount of signal 
bandwidth available to each user based on a total usage of the bandwidth. 

[0008] In another embodiment, a system is provided for equitably 
10 distributing access to a shared broadband signal having a defined bandwidth. 
The system comprises at least one server and a plurality of client systems 
connected to the server. Each client system is utilized by a respective user. 
The system controls user access to the shared broadband signal, monitors the 
amount of signal bandwidth used by each user, and controls the amount of 
15 signal bandwidth available to each user based on a total usage of the 
bandwidth. 

[0009] In yet another embodiment, a multi-communication 
method is provided for equitably distributing access to a shared broadband 
signal having a defined bandwidth. The method uses a server system including 
20 at least one server and a plurality of client systems connected to the server, 
wherein a respective user utilizes each client system. The method includes 
monitoring the amount of bandwidth each user is accessing, and identifying at 
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least one excessive bandwidth user that is accessing an amount of bandwidth 
that exceeds a maximum use threshold. The method further includes 
determining a particular server system activity, which is causing the excessive 
bandwidth user to exceed the maximum use threshold. Additionally, the method 
5 includes controlling the particular server system activity of the excessive user 
such that an input/output (I/O) bandwidth differential is self-balancing. 

BRIEF DESCRIPTION OF THE DRAWINGS 

[0010] The present invention will become more fully understood 
from the detailed description and the accompanying drawings, wherein; 

[0011] Figure 1 is a simplified block diagram of a shared network 
10 system for equitably distributing access to a shared broadband signal, in 
accordance with an exemplary embodiment of the present invention; 

[0012] Figure 2 is a flow diagram of a top-level routine of a 
management scheme employed by the shared network system, shown in Figure 
1 , in accordance with one embodiment of the present invention; 

15 [0013] Figure 3 is a flow diagram of an e-mail bandwidth control 

sub-routine of the management scheme shown in Figure 2; 

[0014] Figure 4 is a flow diagram of a file transfer protocol 
bandwidth control sub-routine of the management scheme shown in Figure 2; 
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[0015] Figure 5 is flow diagram of a virtual private network 
bandwidth control sub-routine of the management scheme shown in Figure 2; 
and 

[0016] Figure 6 is an expanded version block diagram of a 
5 network system for equitably distributing access to a shared broadband signal 
having a defined bandwidth, in accordance with an alternate embodiment of the 
invention. 

DETAILED DESCRIPTION OF THE PREFERRED EMBODIMENTS 

[0017] Figure 1 is a simplified block diagram of a network system 
10 for equitably distributing access to a shared broadband signal having a 

10 defined bandwidth, in accordance with a preferred embodiment of the present 
invention. Network system 10 includes a server system 12, which includes a 
server 14. Additionally, network system 10 includes a plurality of client systems 
18 connected to server 14. Network system 10 is a shared network such as a 
local area network (LAN). In an exemplary embodiment, server 14 includes a 

15 wireless modem (not shown), and client systems 18 include a web browser (not 
shown), such that client systems 18 can access the Internet, via server 14, using 
a broadband signal. Additionally, the modem and browser enable client systems 
18 to access a remote site 22, such as a remote server system, using the 
broadband signal. 

20 [0018] Server system 12 includes a data server 24 connected to 

a centralized database 26 containing product related information on a variety of 
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products, as described below in further detail. In one embodiment, centralized 
database 26 is stored on server 14 and can be accessed by potential users at 
one of the client systems 18. In an alternate embodiment, centralized database 
26 is stored remotely f rom server 1 4. 

5 [0019] Network system 10 employs a management scheme, or 

algorithm, (not shown), preferably stored in database 26, to equitably distribute 
access to the shared broadband signal among a plurality of users utilizing client 
systems 18. Server 14 executes the management scheme. The users utilize 
client systems 18 to communicate with server 14. Initially users log on to server 

10 system 12 to establish a communication link with server 14 and enable access 
to network system 10 and the broadband signal. In operation, server system 12 
utilizes the management scheme to identify heavy users that are using, or 
accessing, the signal at a level that is impacting access to the signal by others 
on server system 12. Once a heavy user is identified, server system 12 

15 determines the type of activity, or operation, in which the heavy user is involved 
that is consuming an excessive amount of the bandwidth. For example, a heavy 
user may be participating in a chat room or downloading lengthy audio/video 
streams. Depending on the activity, server system 12 will manage, or "throttle", 
the heavy user's consumption of the bandwidth and access to the broadband 

20 signal. To manage, or throttle, bandwidth consumption, server system 12 
monitors the bandwidth usage of the heavy user to see if the level of usage 
diminishes, and sends a warning to the heavy user to limit the particular 
operation, or terminates the user's access to the signal and issues a warning to 
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the user to cease further attempts to access the signal for such operations, or 
terminates the user's access to server system 12. 

[0020] As users are added, and overall bandwidth is consumed, 
each user will have their access to the bandwidth throttled until all users have 

5 access to a minimum amount of bandwidth. For example, user access will be 
throttled until all users are connected at a predetermined minimum data transfer 
rate, or speed, such as nominal 22K bits per second (bps). Thus, as user 
access and bandwidth usage increase, each user will have their access 
throttled, or prorated. Each user's access is prorated such that each user is 

10 allowed access to as much bandwidth as is available without any user's access 
dropping below the predetermined minimum speed. For example, if a user is 
accessing a graphic intensive website, the user will be allowed as much of the 
bandwidth that is available without causing any other user's access to drop 

below nominal 22K bps. 

j 

15 [0021] As another example of prorating user access, when a user 

receives, or sends, an e-mail with a large attachment, the management scheme 
will determine whether the size of attachment exceeds a predetermined size. If 
the attachment exceeds the predetermined size the attachment will be received, 
or sent, by the user utilizing as much of the bandwidth as is available without 

20 causing access to the bandwidth of any user to drop below nominal 22K bps. 
As a further example of prorating user access, when a user receives, or sends, a 
file using a file transfer protocol (FTP), the management scheme determines 
whether the size of the file exceeds a predetermined size. If the file size 
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exceeds the predetermined amount, the file will either be blocked and a 
notification that the file has been blocked will be sent to the user, or the file will 
be sent, or received, utilizing as much of the bandwidth as is available without 
causing access of any user to drop below nominal 22K bps. 

5 [0022] In one embodiment, if a user is sending or receiving 

streaming audio or video files, within network system 10 (shown in Figure 1), the 
files will by transmitted without throttling. However, if an audio or video file is 
transmitted to a remote site outside of network system 10, using the broadband 
signal, the management scheme will either block transmission of the file, or 

10 throttle the file transmission such that no user's access drops below the 
predetermined minimum speed. Additionally, if a user is using the broadband 
signal to access a virtual private network (VPN), the user will be allowed to 
access up to a predetermined maximum amount of the bandwidth without 
causing any other user's access to drop below the predetermined minimum 

15 speed. 

[0023] Figure 2 is a flow diagram 100 of a top-level routine of the 
management scheme employed by server system 12, in accordance with an 
exemplary embodiment of the invention. Utilizing client system 18 (shown in 
Figure 1), a user wishing to access the broadband signal sends a request to 
20 server 14 (shown in Figure 1) requesting to log on to server system 12 (shown in 
Figure 1), which is part of an integrated Internet access service, as indicated at 
step 104. Upon receiving the request to log on, the management scheme 
determines, at step 108, whether server 14 is "on-line". As used herein, "on-line" 
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means that server 14 is functioning properly and has established all necessary 
communication links, such as links with database 26 (shown in Figure 1), the 
Internet, or remote site 22 (shown in Figure 1). If server 14 is determined not to 
be on-line, a message is sent to the user, at step 112, notifying the user that 

5 server system 12 is currently unavailable, and to request logging on at a later 
time. In one embodiment, an attendant is available to assist users having 
difficulty utilizing server system 12, in which case, the message sent to the user, 
if server 14 is not logged on, will include an instruction to request assistance 
from the attendant. If server 14 is on line, server 14 determines, at step 116, 

10 whether there is an amount of bandwidth available such that the user can 
access the signal at a speed equal to, or greater than, the predetermined 
minimum speed. 

[0024] If the user can not access the signal at the minimum 
speed, the user is allowed to log on to server system 12 for local use only, as 

15 indicated at step 120, and is notified that the user will be given access to the 
signal as soon as there is sufficient bandwidth to allow access at the minimum 
speed. When a user is logged on to server system for local use only, the user is 
able to communicate with server system 12 and other users within network 
system 10, but is not given access to an outside line to communicate outside of 

20 network system 1 0. If there is sufficient bandwidth to allow the user to access 
the signal at the minimum speed, the user is allowed to fully log on, as indicated 
at step 124, to server system 12 such that the user is given local access within 
network system 10 and access to the broadband signal. 
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[0025] When a user is logged on for local use only, server system 
12 monitors the signal, as indicated at step 128, until there is sufficient 
bandwidth available to provide the predetermined minimum data transfer rate, 
then allows the user to fully log on, as indicated at step 132. Once a user is fully 
5 logged on, server 14 monitors the total amount of bandwidth being used by 
users sending and receiving transmissions via the broadband signal, as 
indicated at step 136. 

[0026] While the total amount of bandwidth being used Is 
monitored each user's use, or access, of the bandwidth is prorated. User 
10 access is prorated, as indicated at step 140, such that each user is allowed 
access to as much of the excess bandwidth as is needed for the input and 
output (I/O) operations of each individual user without causing any other user's 
transmission rate to fall below the predetermined minimum speed. 

[0027] While monitoring and prorating, as indicated at steps 136 
15 and 140, the management scheme monitors each user's service, or operation, 
requests transmitted to server 14, as indicated at step 144. For example, a user 
utilizes client system 18 to transmit a service request to server 14 when the user 
wants to send or receive e-mail, enter a chat room on the Internet, send or 
receive a file using a FTP, or access a VPN. When server 14 receives a service 
20 request, the management scheme immediately blocks, at step 148, all requests 
to access chat rooms. If the service request is not a request to enter a chat 
room, the management scheme determines, at step 152, if the amount of 
bandwidth available is below a predetermined critical level. For example, the 
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management scheme determines if the amount of bandwidth available to all 
users without outside access falls below nominal 22K bps. 

[0028] When user transmits a service request to server 14 and 
the amount of available bandwidth is below the critical level access to all 

5 streaming audio or video web sites is blocked, as indicated at step 156. If the 
available bandwidth is above the critical level, user requests, such as e-mail, 
FTP, or VPN transmissions, are allowed. Upon the allowance of an e-mail 
request, the management scheme implements an e-mail bandwidth control sub- 
routine, as indicated at step 160. Similarly, upon the allowance of a FTP 

10 request, the management scheme implements a FTP bandwidth control sub- 
routine, as indicated at step 164. Likewise upon the allowance of a VPN 
request, the management scheme implements 168 a VPN bandwidth control 
sub-routine. 

[0029] Figure 3 is a flow diagram 200 of the management 
15 scheme e-mail bandwidth control sub-routine. The e-mail bandwidth control 
subroutine determines, at step 204, the type of data flow involved in the e-mail 
request An e-mail request can be a request to route an e-mail message within 
network system 10, such that data flows only within network system 10. 
Additionally, an e-mail request can be a request to transmit an outbound e-mail 
20 message from a user within network system 10 to a remote user outside of 
network system 10, such that data flows from server system 12 to a remote 
location. Furthermore, an e-mail request can be a request by a user within 
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network system 10 to receive an inbound e-mail from a remote user, such that 
data flows from a remote location to server system 12. 

[0030] When a request is made to route an e-mail message 
within network system 10, data flows from a client system 18 to server 14, as 

5 indicated at step 208, and then to another client system 18. Once server 14 
receives the request to locally route an e-mail message, it is determined, at step 
212, whether the e-mail message includes an attachment. If it is determined 
that the e-mail includes an attachment, the e-mail sub-routine determines 
whether the attachment exceeds a predetermined size limit as indicated at step 

10 216. If the attachment exceeds the predetermined size limit, server 14 
terminates routing the e-mail to an intended recipient and sends a notification 
message to the user that initiated the e-mail, informing the user that the e-mail 
will not be routed to the recipient because the attachment exceeds the 
predetermined size limit, as indicated at step 220. If the e-mail message does 

15 not have an attachment, or the attachment does not exceed the predetermined 
size limit, the e-mail bandwidth control sub-routine determines, at step 224, 
whether the e-mail message exceeds a predetermined carbon copy limit. The 
carbon copy limit prevents mass distribution of e-mail messages, or 'Spam' e- 
mail, from consuming large amounts of bandwidth by limiting the number of e- 

20 mail copies that can be sent. When an e-mail message exceeds the carbon 
copy limit, server 14 terminates routing the e-mail to the intended recipients and 
sends a notification message to the user that initiated the e-mail, informing the 
user that the message will not be routed because the e-mail message exceeds 
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the predetermined carbon copy limit, as indicated at 220. When the e-mail 
message is within the carbon copy limit, server 14 routes the message to the 
intended recipient, as indicated at step 228, and the e-mail sub-routine is exited 
232, as indicated at step. 

5 [0031] When an outbound request is made to route an e-mail 

message from a user within network system 10 to a remote user outside of 
network system 10, data flows from a client system 18 to server 14, where 
server 14 determines, at step 232, if the e-mail message contains an 
attachment If it is determined that the e-mail includes an attachment, the e-mail 

10 sub-routine determines, at step 236, whether the attachment exceeds a 
predetermined size limit. If the attachment exceeds the predetermined size limit, 
server 14 terminates routing the e-mail to an intended recipient and sends a 
notification message to the user that initiated the e-mail, informing the user that 
the e-mail will not be routed to the recipient because the attachment exceeds 

15 the predetermined size limit, as indicated at step 240. If the e-mail message 
does not have an attachment, or the attachment does not exceed the 
predetermined size limit, the e-mail bandwidth control sub-routine determines, at 
step 244, whether utilizing the amount of bandwidth available, the send time of 
the e-mail will exceed a predetermined duration. If the send time will exceed the 

20 predetermined duration, a notification message is sent to the user that initiated 
the e-mail, informing the user that the e-mail will not be routed to the recipient 
because the send time will exceed the predetermined duration, as indicated at 
step 240. If the send time will not exceed the predetermined duration, the e-mail 
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is routed to the recipient, as indicated at step 248, a message confirming the e- 
mail has been routed is sent to the initiator, as indicated at step 252, and the 
sub-routine is exited, as indicated at step 232. 

[0032] When an inbound request is made by a user within 

5 network system 10 to receive an e-mail from a remote user, data flows from 
server 14 to a client system 1 8. Upon receiving the request to route the e-mail 
message, server 14 executes the e-mail sub-routine, thereby determining, at 
step 256, whether the e-mail message contains an attachment. If it is 
determined that the e-mail includes an attachment, the e-mail sub-routine 

10 determines, at step 260, whether the attachment exceeds a predetermined size 
limit. If the attachment exceeds the predetermined size limit, server 14 
determines, at step 264, whether the attachment can be stripped from the e-mail 
message. If the attachment can be stripped, the attachment is striped, as 
indicated at step 268, and the e-mail is routed to the recipient along with a 

15 notification that the attachment has been deleted, as indicated at step 272. If 
the attachment can not be stripped, routing of the e-mail is terminated, as 
indicated at step 276, and a message sent to both the initiator of the e-mail and 
the intended recipient, informing the initiator and recipient that routing of the e- 
mail has been terminated, as indicated at step 280. If the e-mail does not 

20 include an attachment, the e-mail is routed, at step 284, to the recipient and the 
e-mail sub-routine is exited, as indicated at step 232. 

[0033] Figure 4 is a flow diagram 300 of the management 
scheme FTP bandwidth control sub-routine. The FTP bandwidth control 
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subroutine determines* at step 304, the type of data flow involved in the FTP 
request. A request to initiate an FTP session can be a request to initiate the 
session within network system 10 such that data flows only within network 
system 10. Additionally, a FTP request can be an outbound request from a user 
5 within network system 10 to initiate a session with user outside of network 
system 10, such that data flows from server system 12 to a remote location. 
Furthermore, a FTP request can be an inbound request by a remote user to 
initiate a session with user within network system 10, such that data flows from a 
remote location to server system 12. 

10 [0034] When a request is made to initiate an FTP session within 

network system 10, data flows from a client system 18 to server 14. The control 
scheme does not allow local FTP sessions. Therefore, if server 14 receives a 
request to initiate a FTP session within network system 10, the session is 
blocked, as indicated at step 308, the user is notified that the session has been 

15 blocked, as indicated at step 312, and the FTP sub-routine is exited, as 
indicated at step 316. 

[0035] When an outbound request is made by a user within 
network system 10 to initiate a session with a remote user, the FTP sub-routine 
determines, at step 320, whether the size of the file can be established. If the 
20 file size can be established, it is determined, at step 324, whether the file size 
exceeds a predetermined size limit. If the file size exceeds the predetermined 
limit, server 14 blocks the session and sends a notification to the user requesting 
the FTP session, informing the user that the session has been blocked due to 
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excessive file size, as indicated at step 328. If the file size does not exceed the 
predetermined size limit the FTP sub-routine verifies whether there is enough 
available bandwidth to establish the FTP session, as indicated at step 332. 
When there is sufficient bandwidth available, the amount of bandwidth the user 
5 is allowed to access, or user pipeline, is fixed at a predetermined size, as 
indicated at step 336, and the FTP session is allowed, as indicated at step 340. 
When there is insufficient bandwidth available for the FTP session, the session 
is blocked, at step 344, and the user is instructed to try initiating the session at a 
later time. If the file size can not be established, the sub-routine determines, at 
10 step 348, whether there is a predetermined minimum amount of bandwidth 
available. If it is determined that there is a minimum amount of available 
bandwidth, the session is allowed, at step 352, otherwise the session is blocked 
and the user is notified that the session has been blocked, as indicated at step 
356. 

15 [0036] When an inbound request is made by a remote user 

outside of network system 10 to initiate a FTP session, data flows from server 
14 to a client system 18. Upon receiving the request to initiate the session, 
server 14 executes the FTP sub-routine, thereby determining whether the size of 
the file can be established, as indicated at step 360. If the file size can be 

20 established, it is determined, at step 364, whether the file size exceeds a 
predetermined size limit. If the file size exceeds the predetermined limit, server 
14 blocks the session and sends a notification stating that the session has been 
blocked due to excessive file size, to the user requesting the FTP session, as 
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indicated at step 370. If the file size does not exceed the predetermined size 
limit the FTP sub-routine verifies whether there is enough available bandwidth to 
establish the FTP session, as indicated at step 374. When there is sufficient 
bandwidth available, the session is allowed with a data transfer rate limited to a 
5 predetermined maximum speed, as indicated at step 378. When there is 
insufficient bandwidth available for the FTP session, the session is blocked and 
the user is instructed to try initiating the session at a later time, as indicated at 
step 344. If the file size can not be established, a message is sent to the user 
requesting the FTP session, informing the user that a specific amount of data 
10 can be transferred in a specific amount of time, and inquiring whether the user 
wants to proceed, as indicated at step 382. If the user chooses to proceed, the. 
session is allowed with a data transfer rate limited to a predetermined maximum 
speed, as indicated at step 378. 

[0037] Figure 5 is a flow diagram 400 of the management 
15 scheme VPN bandwidth control sub-routine. When a user with network system 
10 requests access to VPN, the VPN bandwidth control sub-routine determines 
whether a predetermined minimal amount of bandwidth is available in both data 
transmission directions, for example data transmitted from server 14, or 
outbound data, and data received by server 14, or inbound data. If there is not 
20 the minimal amount of bandwidth available for inbound data, a message is sent 
notifying the user that a VPN connection meeting a minimum speed can not be 
made and requesting that the user try again at a later time, as indicated at step 
408. After the user is notified that the connection can not be made, the user is 
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allowed access to network system 10 for local use within network system 10 
only, as indicated at step 412. When the minimal amount o1 bandwidth is not 
available for outbound data, the sub-routine determines, at step 416, whether 
there is at least the minimal amount of bandwidth available for inbound data, tf 

5 the there is the minimal amount of bandwidth available for inbound data, a 
notification is sent to the user that the minimum amount of outbound bandwidth 
is not available, as indicated at step 420, and the user is allowed the VPN 
connection, as indicated at step 424. If there is not the minimal amount of 
inbound bandwidth available, a message is sent notifying the user that a VPN 

10 connection meeting a minimum speed can not be made and requesting that the 
user try again at a later time, as indicated at step 408. When there is both the 
minimal amount of inbound and outbound bandwidth available, the user is 
allowed the VPN connection, as indicated at step 424, and the amount of 
bandwidth the user is allowed to access, or user pipeline, is fixed such that the 

15 outbound bandwidth is set to the minimum amount, and the inbound bandwidth 
is set to the minimum amount or better, as indicated at step 428. 

[0038] Figure 6 is an expanded version block diagram of a 
network system 522 for equitably distributing access to a shared broadband 
signal having a defined bandwidth, in accordance with an alternate embodiment 
20 of the invention. Network system 522 includes server system 512 and client 
systems 514. Server system 512 includes database server 516, an application 
server 524, a web server 526, a fax server 528, a directory server 530, and a 
mail server 532. A disk storage unit 534 is coupled to database server 516 and 
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directory server 530. Servers 516, 524, 526, 528, 530 and 532 are coupled in a 
local area network (LAN) 536. In addition, a system administrator's workstation 
538, a user workstation 540, and a supervisor's workstation 542 are coupled to 
LAN 536. Alternatively, workstations 538, 540, and 542 are coupled to LAN 536 
5 via an Intranet. 

[0039] Each . workstation, 538, 540, and 542 is a personal 
computer having a web browser. Although the functions performed at the 
workstations typically are illustrated as being performed at respective 
workstations 538, 540, and 542, such functions can be performed at one of 
10 many personal computers coupled to LAN 536. Workstations 538, 540, and 542 
are illustrated as being associated with separate functions only to facilitate an 
understanding of the different types of functions that can be performed by 
individuals having access to LAN 536. 

[0040] Server system 512 is configured to be communicatively 
15 coupled to various remote systems 544 via an ISP Internet connection 548. The 
communication is illustrated as being performed via the Internet, however, any 
other wide area network (WAN) type communication can be utilized in other 
embodiments, i.e., the systems and processes are not limited to being practiced 
via the Internet. In addition, and rather than a WAN 550, local area network 536 
20 could be used in place of WAN 550. 

[0041] While the invention has been described in terms of various 
specific embodiments, those skilled in the art will recognize that the invention 
can be practiced with modification within the spirit and scope of the claims. 
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WHAT IS CLAIMED IS: 

1 . A communication method for equitably distributing access to 
a shared broadband signal having a defined bandwidth, using a server system 
including at least one server and a plurality of client systems connected to at 
5 least one server, wherein each client system is utilized by a respective user, said 
method comprising: 

controlling user access to the shared broadband signal; 

monitoring an amount of the bandwidth used by each user; and 

controlling an amount of the bandwidth available to each user 
10 based on a total usage of the bandwidth, such that each user is ensured a 
predetermined minimum bandwidth. 

2 The method of Claim 1 , wherein controlling user access to 
the signal comprises: 

receiving a user request to access the signal; and 

15 determining if the server is on-line. 

3. The method of Claim 2, wherein controlling user access to 
the signal further comprises: 

notifying the user to request access to the signal at a later time, if 
the server is determined to be off-line; and 


WO 03/021890 


PCT/US02/20837 


-21- 

determining whether a minimum threshold of the bandwidth is 
available for use, if the server is determined to be on-line. 

4. The method of Claim 3, wherein controlling user access to 
the signal further comprises: 

5 allowing the user access to the signal, if there is determined to be 

a minimum threshold of bandwidth available for use; and 

allowing the user access to the server for local use, and notifying 
the user access to the signal will be allowed when the amount of bandwidth 
available exceeds the minimum threshold, if there is determined not to tfe a 
10 minimum threshold of bandwidth available for use. 

5. The method of Claim 1, wherein controlling user access to 
the signal further comprises: 

monitoring the total input/output (I/O) use of the bandwidth; and 

prorating the amount of the bandwidth each user is allowed to 
15 access, such that excess bandwidth is utilized and the prorated amount of the 
bandwidth remains above a minimum threshold. 


6. The method of Claim 1, wherein monitoring an amount of 
the bandwidth used by each user comprises: 
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monitoring service requests by each user, wherein the service 
requests include chat room requests, e-mail requests, file transfer protocol 
requests, and virtual private network requests; and 

blocking all chat room service requests. 

5 7. The method of Claim 1 , wherein controlling an amount of 

bandwidth available to each user comprises determining if an amount of the 
bandwidth available is below a critical level, upon the server receiving a service 
request. 

8. The method of Claim 7, wherein controlling an amount of 
10 bandwidth available to each user further comprises blocking all service requests 

to access websites that transmit at least one of streaming audio and streaming 
video, if the determined amount of the bandwidth available is below the critical 
level. 

9. The method of Claim 7, wherein controlling an amount of 
15 bandwidth available to each user further comprises: 

allowing an e-mail service request, if the determined amount of the 
bandwidth available is above the critical level; and 

implementing an e-mail bandwidth control routine upon allowing an 
e-mail service request. 

20 10. The method of Claim 7, wherein controlling an amount of 

bandwidth available to each user further comprises: 
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allowing a file transfer protocol (FTP) service request, if the 
determined amount of the bandwidth available is above the critical level; and 

implementing a FTP bandwidth control routine upon allowing the 
FTP service request. 

5 11. The method of Claim 7, wherein controlling an amount of 

bandwidth available to each user further comprises: 

allowing a virtual private network (VPN) service request, if the 
determined amount of the bandwidth available is above the critical level; and 

implementing a VPN bandwidth control routine upon allowing the 
10 VPN service request 
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12. A system for equitably distributing access to a shared 
broadband signal having a defined bandwidth, said system comprising: 

a plurality of client systems, wherein each said client system is 
configured to be utilized by a respective user; and 

5 at least one server interconnecting said client systems, said server 

being configured to execute a management scheme to control user access to 
the shared broadband signal, to monitor an amount of said bandwidth used by 
each user, and to control an amount of said bandwidth available to each user 
based on a total usage of the bandwidth. 

10 13 The system of Claim 12, wherein to control user access to 

the signal, said management scheme includes receiving a user request to 
access the signal, and determining if said server is on-line. 

14. The system of Claim 13, wherein to control user access to 
the signal, said management scheme includes notifying the user to request 

15 access to the signal at a later time, if said server is determined to be off-line, and 
determining whether a minimum threshold of the bandwidth is available for use, 
if said server is determined to be on-line. 

15. The system of Claim 14, wherein to control user access to 
the signal, said management scheme includes allowing the user access to the 

20 signal, if there is determined to be a minimum threshold of bandwidth available 
for use, and allowing the user access to said server for local use, and notifying 
the user access to the signal will be allowed when the amount of the bandwidth 
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available exceeds the minimum threshold, if there is determined not to be a 
minimum threshold of bandwidth available for use. 

16. The system of Claim 12, wherein to control user access to 
the signal, said management scheme includes monitoring the total input/output 

5 (I/O) use of the bandwidth, and prorating the amount of the bandwidth each user 
is allowed to access, such that excess bandwidth is utilized and the prorated 
amount of the bandwidth remains above a minimum threshold. 

17. The system of Claim 12, wherein to monitor an amount of 
the bandwidth used by each user, said management scheme includes 

10 monitoring service requests by each user, wherein the service requests include 
chat room requests, e-mail requests, file transfer protocol requests, and virtual 
private network requests, and blocking all chat room service requests. 

18. The system of Claim 12, wherein to control an amount of 
bandwidth available to each user, said management scheme includes 

15 determining if an amount of the bandwidth available is below a critical level, 
upon said server receiving a service request. 

19. The system of Claim, 18, wherein to control an amount of 
bandwidth available to each user, said management scheme includes blocking 
all service requests to access websites that transmit at least one of streaming 

20 audio and streaming video, if the determined amount of the bandwidth available 
is below the critical level. 
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20. The system of Claim 18, wherein to control an amount of 
bandwidth available to each user, said management scheme includes allowing 
an e-mail service request, if the determined amount of the bandwidth available is 
above the critical level, and implementing an e-mail bandwidth control routine 

5 upon allowing the e-mail service request. 

21. The system of Claim 18, wherein to control an amount of 
bandwidth available to each user, said management scheme includes allowing a 
file transfer protocol (FTP) service request, if the determined amount of the 
bandwidth available is above the critical level, and implementing a FTP 

10 bandwidth control routine upon allowing the FTP service request. 

22. The system of Claim 18, wherein to control an amount of 
bandwidth available to each user, said management scheme includes allowing a 
virtual private network (VPN) service request, if the determined amount of the 
bandwidth available is above the critical level and implementing a VPN 

15 bandwidth control routine upon allowing the VPN service request. 


WO 03/021890 


PCT/US02/20837 


-27- 

23. A communication method for equitably distributing access to 
a shared broadband signal having a defined bandwidth, using a server system 
including at least one server and a plurality of client systems connected to at 
least one server, wherein each client system is utilized by a respective user, said 

5 method comprising: 

monitoring the amount of the bandwidth each user is accessing; 

identifying at least one excessive bandwidth user that is accessing 
an amount of the bandwidth that exceeds a maximum use threshold; 

determining a particular server system activity that is causing the 
10 excessive bandwidth user to exceed the maximum use threshold; and 

controlling the particular server system activity of the excessive 
user such that an input/output (I/O) bandwidth differential is self-balancing. 

24. The method of Claim 23, wherein controlling the particular 
server system activity of the excessive user comprises sending a notice to the 

15 excessive user informing the excessive user to reduce use of the particular 
server system activity. 

25. The method of Claim 23, wherein controlling the particular 
server system activity of the excessive user comprises: 

prohibiting the particular server system activity; and 
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sending a notice to the excessive user informing the excessive 
user to cease requesting the particular server system activity. 

26. The method of Claim 23, wherein controlling the particular 
server system activity of the excessive user comprises terminating access to the 
5 signal by the excessive user. 
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